Management Policy

The General Management of PGI Engineering & Consulting, aware of its commitment to all our stakeholder groups —clients, collaborators, male and female employees, shareholders, society and the environment— assumes responsibility for organising the work system with the aim of maximising benefit and satisfaction for all of them, within the applicable legal framework and fulfilling both internal and client requirements, committing to developing and implementing an Integrated Management System (ISO 9001, 14001, 50001, 27001 and 19650) and to periodically reviewing it to ensure continuous improvement.

Likewise, the organisation recognises the need to adequately protect information as a strategic asset and establishes an Information Security Management System (ISMS) based on a risk management approach, aligned with business objectives and the needs and expectations of interested parties.

Our general objectives, by stakeholder group, are:

Clients: To provide a wide range of technical services in the field of construction, exceeding their expectations in terms of technical quality, innovation in solutions, speed and professionalism. To incorporate energy efficiency and sustainability criteria into projects.

Staff: To provide a safe, motivating workplace that allows personal and professional development at the highest level. To inform, train and raise awareness on information security, and to raise awareness on energy saving and its environmental implications.

Collaborators and suppliers: To offer them the opportunity to accompany us in our future-oriented project, with solidity, guarantee and mutual benefit. To share the principles of environmental respect, energy efficiency and information security, ensuring compliance with applicable requirements, and to support the acquisition of energy-efficient products and services.

Shareholders: To provide returns on their investments through confidence in our results and the professionalism of our management, guaranteeing the protection of information and business continuity. To offer them the opportunity to participate in improving our environment and social balance through, for example, investment in energy efficiency and alternative energy projects.

Society: By developing buildings, installations or other services that help improve the well-being of their inhabitants, including the protection of information, the resilience of systems and environmental awareness.

Environment: To promote, in the projects we design, the protection of the environment, the prevention of pollution, the use of environmentally friendly materials, the protection of information throughout its lifecycle and the improvement of energy performance, developing installations that minimise resource consumption throughout their lifecycle, and to continue researching the development of alternative energy techniques to reduce dependence on fossil fuels.

International: To promote the internationalisation of the company, ensuring the protection of information in international environments and compliance with applicable legal requirements in each country, through the opening of new overseas markets and the establishment of links with the world of engineering.

Senior management will provide the information and resources necessary to support the achievement of these general objectives, and will ensure that all staff are aware of them.

PGI Engineering & Consulting recognises the importance of information as a fundamental asset for delivering its services. This information is exposed to dynamic risks and threats that may be internal or external, accidental or intentional. The materialisation of any of these threats may result in material or financial losses, reputational damage, loss of client trust, or legal non-compliance.

In this regard, the organisation establishes a systematic process for identifying, analysing, evaluating and treating information security risks, ensuring periodic review and the effectiveness of implemented controls.

The management of PGI Engineering & Consulting assumes responsibility for information security in terms of the protection of information regarding:

• Confidentiality: Ensuring that information will be accessible exclusively to those who need to know it.
• Integrity: Ensuring that the company's information is truthful, accurate and has not been altered.
• Availability: Ensuring that the company's information is accessible for the activities that require it at the time needed.

The organisation also commits to:

• Complying with applicable legal, regulatory and contractual requirements, including those relating to personal data protection.
• Establishing, maintaining and reviewing specific information security objectives aligned with the organisation's strategy.
• Implementing appropriate security controls for the protection of information assets, including access management, information classification, incident management and business continuity.
• Guaranteeing the availability of information and the resilience of information systems.

To this end, it commits to developing, implementing, maintaining and continuously improving the System, providing the necessary means and resources and urging all staff to assume their commitment to the protection of information and compliance with this policy.

All staff, as well as collaborators and third parties, are responsible for complying with this policy, protecting information and reporting any detected incident or vulnerability.

As part of this strategy, the management of PGI Engineering & Consulting has defined and established this Integrated Policy, committing to its support, communication, availability and periodic review to ensure its ongoing adequacy.

This policy is based on the following principles:

• Ethical and Legal Conduct
• Information Protection and Security
• Client Trust
• Transparent and Proactive Responsibility
• Innovation and Competitiveness through Technology
• Value Creation through Integrated Security

 

Aina Juliol

 

President, PGI Engineering & Consulting